Bump dependabot-omnibus from 0.234.0 to 0.235.0 (!2452) · Merge requests · multiple-projects / imported-project-5f7cdca7acd728e3

George Koltsov requested to merge dependabot-bundler-dependabot-omnibus-0.235.0 into main Oct 19, 2023

Bumps dependabot-omnibus from 0.234.0 to 0.235.0.

Release notes

Sourced from dependabot-omnibus's releases.

v0.235.0

What's Changed

Improve detection of unsupported cargo toolchains by @deivid-rodriguez in dependabot/dependabot-core#8181

build(deps): bump PNpm from 8.8.0 to 8.9.0 by @yeikel in dependabot/dependabot-core#8175

Expose a new directory_not_found user error by @deivid-rodriguez in dependabot/dependabot-core#8174

Refactor shelling out in Python by @deivid-rodriguez in dependabot/dependabot-core#8167

Fix false positive auth redaction by @deivid-rodriguez in dependabot/dependabot-core#8185

remove unused code by @jakecoffman in dependabot/dependabot-core#8171

Fix multiple pip compile errors by @deivid-rodriguez in dependabot/dependabot-core#8189

Fix poetry multiple requirement replacement in pyproject.toml by @deivid-rodriguez in dependabot/dependabot-core#8190

Improve running updater tests by @deivid-rodriguez in dependabot/dependabot-core#8206

build(deps): bump PNpm from 8.9.0 to 8.9.2 by @yeikel in dependabot/dependabot-core#8202

build(deps): bump yarn to 3.6.4 by @yeikel in dependabot/dependabot-core#8151

Mark .rbi as linguist-generated by @JamieMagee in dependabot/dependabot-core#8209

Fix version comments after quoted strings by @kurtmckee in dependabot/dependabot-core#8127

Get better info on an unknown error by @deivid-rodriguez in dependabot/dependabot-core#8211

Raise user errors on invalid poetry manifest by @deivid-rodriguez in dependabot/dependabot-core#8207

Fix sentry redaction issues by @deivid-rodriguez in dependabot/dependabot-core#8219

Avoid trying to parse poetry.lock if pyproject.toml is invalid for Poetry by @deivid-rodriguez in dependabot/dependabot-core#8223

Ignore dependencies from remote constraint files by @deivid-rodriguez in dependabot/dependabot-core#8222

Go: pull from the official Docker image so that Dependabot bumps it by @jakecoffman in dependabot/dependabot-core#8225

Make composer CI pass consistently by @deivid-rodriguez in dependabot/dependabot-core#8226

Ensure Grouped Security Updates are rebased correctly by @jurre in dependabot/dependabot-core#8204

Raise user error when not finding path dependencies in Python by @deivid-rodriguez in dependabot/dependabot-core#8172

Support Python requirements with preceding "v" by @deivid-rodriguez in dependabot/dependabot-core#8229

Add types to FileUpdaters::Base by @JamieMagee in dependabot/dependabot-core#8214

v0.235.0 by @dependabot-core-action-automation in dependabot/dependabot-core#8231

New Contributors

@kurtmckee made their first contribution in dependabot/dependabot-core#8127

Full Changelog: https://github.com/dependabot/dependabot-core/compare/v0.234.0...v0.235.0

Commits

20590b5 Merge pull request #8231 from dependabot/bump-to-v0.235.0
28df8d6 v0.235.0
9a8a26f Add types to FileUpdaters::Base (#8214)
63977df Support Python requirements with preceding "v" (#8229)
fff2210 Merge pull request #8172 from dependabot/deivid-rodriguez/fix-looking-for-pat...
27c50ee Raise user error if Python path dependencies are not reachable
6153025 Avoid parsing path dependencies for requirement.txt acting as lockfiles
593ab80 Prefer filter_map to two passes
3cfcbaf Rename names & methods for modern times
d53a72f Extract helper method
Additional commits viewable in compare view

Dependabot commands

You can trigger Dependabot actions by commenting on this MR

@dependabot-bot recreate will recreate this MR rewriting all the manual changes and resolving conflicts

Admin message

Admin message

Bump dependabot-omnibus from 0.234.0 to 0.235.0

v0.235.0

What's Changed

New Contributors

Merge request reports